People Matter

Data Privacy and GRC Manager



London, UK · United Kingdom
Posted on Monday, July 8, 2024

The Data Privacy and GRC Manager will be responsible for overseeing the organization's data privacy and governance, risk, and compliance (GRC) programs across both Corporate and our Divisional entities. The role will plan, implement, and monitor policies and procedures to ensure compliance with data privacy regulations and standards, and manage risks related to information security and data protection. They will also coordinate with other departments and external stakeholders to ensure compliance with data privacy and GRC standards and regulations at a global scale.

Job Description


· Develop and implement data privacy and GRC strategies, policies, and procedures to protect the organization's information systems and data

· Manage the data privacy and GRC teams and provide guidance, training, and supervision to staff

· Monitor and evaluate the organization's compliance with data privacy and GRC standards and regulations

· Identify and respond to data privacy incidents, breaches, and vulnerabilities

· Conduct data privacy and GRC audits, assessments, and testing to ensure compliance with standards and regulations

· Recommend and implement data privacy and GRC solutions, tools, and best practices to enhance the organization's compliance posture

· Communicate and collaborate with other departments and external stakeholders on data privacy and GRC issues and initiatives

· Work closely with the InfoSec team to produce regular training for end users to maintain our compliance standards

· Assist in completing RFP’s, RFQ’s and Insurance questionnaires

· Stay updated on the latest data privacy and GRC trends, threats, and technologies


· Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field

· Minimum of 5 years of experience in data privacy, GRC, or related field

· Certification in data privacy or GRC such as CIPP, CIPM, CGEIT, or CRISC

· Experience working with data privacy regulations such as GDPR, CCPA, and HIPAA

· Strong knowledge of data privacy and GRC principles, frameworks, standards, and best practices

· Proficient in data privacy and GRC technologies, tools, and systems

· Excellent analytical, problem-solving, and decision-making skills

· Strong communication, presentation, and interpersonal skills

· Ability to lead, motivate, and manage a team

· Ability to work under pressure and handle multiple tasks.

About Us

SymphonyAI is building the leading enterprise AI SaaS company for digital transformation across the most critical and resilient growth industries, including retail, consumer packaged goods, financial crime prevention, manufacturing, media, and IT service management. Since its founding in 2017, SymphonyAI today serves 1500+ Enterprise customers globally and has grown to 3,000 talented leaders, data scientists, and other professionals across over 30 countries.